Director of Information SecurityAcquia

THIS JOB HAS EXPIRED

Company Overview
Acquia is where great digital experiences begin. Acquia is helping some of the world's leading brands succeed, including Twitter, Mercedes Benz, Warner Music Group, and Stanford University. More than 3,800 organizations are moving at the speed of the web with Acquia?s solutions for content, community and commerce. Acquia offers developer tools, cloud solutions and global expertise to drive success the open source way.

The company is privately held and is backed by Sigma Partners, North Bridge Venture Partners, Tenaya Capital, Investors Growth Capital, Goldman Sachs and O'Reilly Alphatech Ventures. Acquia was named the fastest-growing software company in the 2012 Inc. 500.

Position Overview

Acquia is looking for a Director of Information Security to lead our security and compliance program. This is a critical role for the company to enable the business to be successful across multiple vertical markets.

Job Responsibilities
Lead compliance objectives for Acquia?s PaaS and SaaS products including including SSAE16 SOC 1, FISMA/FedRAMP, PCI and ISO 27001.
Monitor and advise on security issues related to Acquia systems and workflows to ensure that security controls are appropriate and operating as intended.
Assist sales and pre-sales teams in responding to customer?s security and compliance related inquiries
Partner with corporate council to ensure continued compliance with applicable privacy and data security related regulations such as PCI and the EU Data Protection Directive.
Develop and manage annual security and compliance budget
Consult and advise technical and business leaders regarding risks to information security and business operations as well as the controls required to mitigate those risks.
Oversee the enterprise information security & privacy awareness program to assure Acquia?s staff are knowledgeable of policies, best practices, and relevant guidance appropriate to their role in the organization.
Conduct internal audits and work with external auditors in the continued development of appropriate criteria to assess processes, applications, and technology infrastructure elements for compliance with enterprise information security and risk management.
Perform forensic analysis to identify breaches.

Position Requirements
A minimum of 10 years security and compliance experience.
CISA, CISSP or similar certification is preferred
Linux, open source and Drupal knowledge and expertise is preferred
Experience in an agile development environment is preferred
Experience in the cloud based service model is preferred
Key leadership and primary accountability for information security policy, standards and controls development and integration in a high-growth company
Previous experience with FISMA, SAS70/SSAE16, PCI and/or ISO 27001 is preferred

Strong written and verbal communication and presentation skills
Highly self motivated and directed

With over two million downloads since inception, Drupal is used by web developers worldwide to build compelling websites. Diverse organizations use Drupal as their core social publishing system, including media companies, non-profit organizations, publishers, and many others.
Acquia plans to accelerate and extend market adoption of Drupal by advancing the core technology and offering value-added software products and network services that dramatically speed deployment and reduce risk.
Our founders are Dries Buytaert, the original creator and project lead of the Drupal open source web content management system, and Jay Batson, previously founder and CEO of Pingtel.